Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9016c8f8-5e23-4acf-929a-ba5a344b35b6.roa
File: 9016c8f8-5e23-4acf-929a-ba5a344b35b6.roa (raw, json)
Hash identifier: Vtt7+QumXE9238WZ7AtJFe1utLcnhsf6t+hz9yke5sc=
Subject key identifier: 41:E6:22:CE:51:7F:DF:12:A0:41:DF:D4:ED:22:41:13:A4:2D:16:24
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 64DD579728A60C8D860BB93E9C19A619D372F18A
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9016c8f8-5e23-4acf-929a-ba5a344b35b6.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:da69:4080::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:dd:57:97:28:a6:0c:8d:86:0b:b9:3e:9c:19:a6:19:d3:72:f1:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: serialNumber=626e0f45512a5954c8f45c19599037c114b2b673b743d3cdb16df14a5e65c146, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:d5:8a:9d:67:4c:43:f9:41:5b:ab:d4:62:a5:
3f:73:e2:f2:f3:cf:30:f7:98:64:24:48:37:bd:69:
ed:5d:33:3c:04:0b:1f:ac:95:71:22:cc:3f:8d:f5:
04:e0:c7:be:d7:23:3d:ef:1f:14:4b:94:d0:ea:88:
f5:a3:31:6b:9d:e0:aa:94:b0:90:66:1b:b5:d2:06:
ee:af:5f:3c:43:41:59:0c:fb:00:db:b2:b8:c3:76:
bf:66:ef:e7:97:46:09:c9:1f:0f:e7:45:9b:f3:af:
72:8f:db:6a:4b:e5:10:37:4d:03:a9:26:c1:51:88:
e7:97:71:65:1a:3a:4a:c2:2e:6d:ab:40:b8:b3:84:
40:46:b2:1f:95:53:57:ba:16:ba:58:ad:09:60:f6:
65:fb:a2:52:9c:8e:70:99:0a:e8:d6:0c:6a:24:01:
b6:10:06:d1:82:1a:0d:2b:e8:c3:83:19:2f:e8:f2:
80:81:a0:03:76:1e:70:20:45:dc:ce:0e:3c:da:65:
79:c8:25:c0:99:15:1e:3f:58:66:cd:ab:7c:3e:3b:
fa:70:e3:21:8e:31:31:8f:bc:d8:ad:00:89:a9:7d:
d1:de:58:0f:7c:ae:9a:5e:c2:36:2a:7d:54:4c:6f:
ac:ef:68:81:41:1e:7c:ab:b4:c4:e5:26:bc:db:80:
53:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:E6:22:CE:51:7F:DF:12:A0:41:DF:D4:ED:22:41:13:A4:2D:16:24
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9016c8f8-5e23-4acf-929a-ba5a344b35b6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:da69:4080::/46
Signature Algorithm: sha256WithRSAEncryption
7d:4e:35:78:ad:bd:91:7a:c0:92:a5:6b:4b:e8:66:95:74:a6:
41:94:45:d9:8d:3d:7c:72:c1:d5:8a:b6:95:ca:28:8a:e7:c5:
73:fa:87:fa:6c:a8:1d:09:31:ca:15:d5:c3:33:61:e9:2f:e0:
5c:a5:ae:a1:7d:b5:87:b9:81:32:9c:48:c3:a2:49:d5:b5:cb:
fa:99:25:0f:e3:c8:dc:81:c9:ed:7c:cb:32:71:93:f1:ef:88:
2a:1d:7c:1b:fa:8f:aa:1d:ff:0e:3f:b4:b8:d3:42:09:48:0c:
fc:c5:43:96:1b:f1:df:19:07:e8:ba:8e:f4:07:35:bc:05:4e:
81:32:ee:c9:b9:7f:ce:70:2b:53:fa:f8:a7:ab:8f:43:93:05:
11:80:83:94:a9:76:0c:52:cc:4e:b2:0a:bb:15:52:89:65:49:
39:75:ae:f1:ad:78:e6:4b:46:ee:ee:9c:32:e6:5f:85:8e:e5:
fa:50:43:2a:71:7b:bb:02:39:c0:81:0c:3b:70:5a:53:cb:a4:
59:f8:82:a6:5f:72:32:24:5a:07:99:5c:42:4f:09:c1:4b:6e:
a5:c3:59:b8:12:ef:b0:ea:c9:0d:fe:23:b3:68:ce:a7:96:17:
a0:ad:e9:d3:8f:c0:07:d3:e3:42:66:4a:e4:c5:a4:2b:b3:dd:
60:69:7c:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:37:12 2025 by rpki-client